Skip to content

Tracking users across browsers

Thom Shannon has released an interesting bit of Flash/JS code which enables a site to track users across browsers. It only works on Windows at the moment and uses Flash local storage to retain the information. I think this could be great for tracking malicious TOR users or attackers behind proxies. The example along with source code can be viewed here:-

Cross cookie example

Great work Thom!

Comments 4

  1. pdp wrote:

    I don’t like not being able to see the Flash object sources :) so, here I coded it for you!

    import flash.external.ExternalInterface;

class FlashCookieManager {
	public function FlashCookieManager() {
		ExternalInterface.addCallback("get", this, get);
		ExternalInterface.addCallback("set", this, set);
		ExternalInterface.addCallback("cls", this, cls);
	}

	public function get(name, path, secure) {
		var s = SharedObject.getLocal(name, path, secure);
		var v = s.data.value;

		s.close();

		return v;
	}

	public function set(data, name, path, secure) {
		var s = SharedObject.getLocal(name, path, secure);
		s.data.value = data;

		s.flush();
		s.close();
	}

	public function cls(name, path, secure) {
		var s = SharedObject.getLocal(name, path, secure);

		s.clear();
		s.flush();
		s.close();
	}
}
    Posted 06 Dec 2007 at 2:22 pm
  2. Gareth Heyes wrote:

    Hehe thanks :) I didn’t know about the SharedObject in Flash.

    Posted 06 Dec 2007 at 2:38 pm
  3. pdp wrote:

    and here is the link that explains how to compile it:

    http://www.gnucitizen.org/blog/flash-cookie-object-tracking/

    cheers,
    pdp

    Posted 06 Dec 2007 at 2:48 pm
  4. adam wrote:

    Cool! I test it on FF and opera ^_^!

    Posted 12 Dec 2007 at 7:15 am

Post a Comment

Your email is never published nor shared. Required fields are marked *

Comment spam protected by SpamBam